Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://wandering.shop/users/vaurora/statuses/111617878087336570">Valerie Aurora (vaurora@wandering.shop)'s status on Friday, 22-Dec-2023 03:36:08 JST</a><a href="https://wandering.shop/@vaurora" title="vaurora@wandering.shop"><img src="https://gnusocial.jp/avatar/106149-48-20240219155433.webp" width="48" height="48" alt="Valerie Aurora" style="position: absolute; left: 0; top: 0;">Valerie Aurora</a></section><article><p>My hot take: software companies should not only have bug bounties but also pay external orgs/consultants for other activities: dev tooling, maintenance, testing, standard compliance, accessibility, etc.</p><p>My current working theory is that there is a whole range of software-related work that cannot be done effectively by employees of a company because the internal incentives oppose it. Security is the obvious one but also the above-listed activities are this way too</p><p><a href="https://mstdn.social/@cammerman/111611237947998075" rel="nofollow noreferrer">https://mstdn.social/@cammerman/111611237947998075</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2483500#notice-4913810">In conversation</a><time datetime="2023-12-22T03:36:08+09:00" title="Friday, 22-Dec-2023 03:36:08 JST">about a year ago</time> <span>from <span><a href="https://wandering.shop/@vaurora/111617878087336570" rel="external" title="Sent from wandering.shop via ActivityPub">wandering.shop</a></span></span><a href="https://wandering.shop/@vaurora/111617878087336570">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/451109">Untitled attachment</a></label><br></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Valerie Aurora (vaurora@wandering.shop)'s status on Friday, 22-Dec-2023 03:36:08 JST Valerie Aurora
My hot take: software companies should not only have bug bounties but also pay external orgs/consultants for other activities: dev tooling, maintenance, testing, standard compliance, accessibility, etc.
My current working theory is that there is a whole range of software-related work that cannot be done effectively by employees of a company because the internal incentives oppose it. Security is the obvious one but also the above-listed activities are this way too
https://mstdn.social/@cammerman/111611237947998075
In conversationabout a year ago from wandering.shoppermalink
Attachments
1. Untitled attachment

Public

Embed Notice

HTML Code

Corresponding Notice